
MBSE Methodology for FM 
System Design 

(Model Based System Engineering Methodology for Fault Management System Design) 


Lui Wang, Michel Izygon*, Ph.D., Shira Okon */ ER6 
Spacecraft Software Engineering Branch, *Tietronix Software 

JSC/NASA 

Magdy Bareh, Castet, Jean-Francois, Nunes, Jeffery, Lorraine Fesq 

J PL/NASA 


January 29, 2015 


MBSE Context 


Model once and Use many times 
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MBFME Tool Suite Concept 
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MBFME Meta-Model (System Behavior) 


Complexity is 
captured via 
interfaces in the 
physical 

architecture (IBD) 
and via 

transitions in the 
behavior models 
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Power Subsystem Internal Block Diagram (IBD) 





Power Subsystem Internal Block Diagram (IBD) 


Fan in the Can SysML model 

• Demonstrates redundancy in the power system 

• Demonstrates power cross-strapping 
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State Machine Diagram for CCAA1 





Interactions Between PDU1 and CCAA1 






FMECA (Failure Mode and Effects Criticality 
Analysis) Data Exchange 
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Failure Modes and Effects Criticality Analysis (FMECA) 
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FMECA Analysis Results 



Failure Modes and Effects Criticality Analysis (FMECA) 


5 Project Name: 


Fan in the Can SysML Model 


10 Failure Modes Can Result in a Critical 1 Level Failure 
Due to redundancy (initial analysis without crosstie): 

* 6 potential failure modes are 2-fault tolerant 

* 2 potential failure modes are 1 -fault tolerant 

The failure of the CCAA1 and PDU1 are critical failures 
requiring reliability measures 
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Future Directions / Conclusions 


♦ Expand the FM meta-models (model attributes) to support 
additional FM products 

♦ Continue collaboration with additional FM analysis experts (e.g., 
QSI TEAMS) 

♦ Demonstrate the tools on NASA systems of varying complexity 
(e.g., CDS 2.0) 

♦ Support automated generation of simulations with failure 
injection 


Uses of System Models 

Model once and Use many times 
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Generate MEL from SysML 
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XTCE Exchange 
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State Machine (SCXML)/FSM Exchange 
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SCXML:"State Chart extensible Markup Language". Provides a generic state-machine 
based execution environment based on Harel State Tables. 
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CDS System Model 
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